Systems and methods for facilitating card present transactions

ABSTRACT

This disclosure describes systems and methods related to facilitating card present transaction. In one embodiment, a service provider system may receive a request from a merchant to initiate a card present transaction associated with a consumer. The service provider system may determine an identifier associated with a mobile device associated with the consumer. The service provider system may communicate to the mobile device, based at least in part on the identifier, a message that facilitates invocation of a transaction module associated with the mobile device. The service provider system may facilitate the car present transaction based at least in part on an interaction with the transaction module.

RELATED APPLICATIONS

This application claims priority to U.S. Provisional Patent ApplicationNo. 61/592,934, entitled “Systems and Methods for Facilitating CardPresent Transactions,” filed on Jan. 31, 2012, the contents of which areincorporated by reference herein in their entirety.

TECHNICAL FIELD

Embodiments of the disclosure relate generally to payment transactions,and more specifically, to the facilitation of card present paymenttransactions.

BACKGROUND

A wide variety of different types of payment transactions are performedon behalf of merchants and consumers, including electronic commerce(“eCommerce”) payment transactions performed via the Internet andpoint-of-sale transactions. In a typical eCommerce transaction, aconsumer utilizes a consumer device (e.g., a personal computer) toaccess one or more merchant Web sites, and the consumer selects productsto be purchased. During a checkout proceeding, the consumer providespayment account information, such as a credit card or debit card number,to a merchant system. The merchant system then generates a paymentauthorization request utilizing the payment account information, and thepayment authorization request is communicated to a payment accountissuer for processing.

Conventional eCommerce payment transactions are considered “card notpresent” (“CNP”) transactions because a physical payment device (e.g., apayment card) has not been read by the merchant. Accordingly, a higherlevel of risk may be attributed to the transactions, thereby leading toincreased pricing and/or liability concerns. However, with theincreasing use of new payment devices by consumers, such astransaction-enabled mobile devices, there is an opportunity for improvedsystems and methods that facilitate card present eCommerce transactions.

A purchase transaction at a point-of-sale (“POS”) typically involves theprovision of payment information from a consumer payment device to amerchant terminal. For example, a consumer payment card is typicallyswiped by a merchant in order to read magnetic stripe information fromthe card. With the increasing use of new types of payment devices, suchas contactless smart card or a near field communication (“NFC”) mobiledevice, a merchant can use a contactless reader to collect paymentaccount information from a payment device. Accordingly, there is anopportunity for improved systems and methods for facilitatingtransactions at a merchant point of sale.

BRIEF DESCRIPTION OF THE FIGURES

The detailed description is set forth with reference to the accompanyingdrawings. The use of the same reference numerals indicates similar oridentical components or elements; however, different reference numeralsmay be used as well to indicate components or elements which may besimilar or identical. Various embodiments of the disclosure may utilizeelements and/or components other than those illustrated in the drawings,and some elements and/or components may not be present in variousembodiments. Depending on the context, singular terminology used todescribe an element or a component may encompass a plural number of suchelements or components and vice versa.

FIG. 1 illustrates a block diagram of an example system that may beutilized in accordance with various embodiments of the disclosure.

FIG. 2 illustrates a flow diagram of an example process for facilitatinga card present transaction at a merchant system, according to exampleembodiments of the disclosure.

FIG. 3 illustrates a flow diagram of an example process for completing acard present transaction utilizing a consumer device, according toexample embodiments of the disclosure.

FIG. 4 illustrates a flow diagram of an example process for facilitatinga merchant-initiated card present transaction by a service provider,according to example embodiments of the disclosure.

FIG. 5 illustrates a flow diagram of an example process for collectingauthentication data associated with a card present transaction,according to example embodiments of the disclosure.

FIG. 6 illustrates a flow diagram of an example process for completing amulti-user payment transaction, according to example embodiments of thedisclosure.

DETAILED DESCRIPTION

Various embodiments of the disclosure are directed to systems andmethods for facilitating card present transactions, such as eCommercetransactions and/or transactions at a merchant point-of-sale (“POS”). Incertain embodiments, one or more secure payment applications may beprovisioned to a consumer device, such as a consumer mobile device, andthe one or more applications may facilitate card present transactions.For example, during an online purchase, a consumer may provide amerchant with identification information for a mobile device (e.g., amobile telephone number, etc.), thereby facilitating communication withthe mobile device (e.g., communication by the merchant, communication bya service provider, etc.) in order to obtain card present information,such as payment account information, security information, and/orvalidation data. Alternatively, the merchant may provide the user withinformation (e.g., transaction specific information to be entered into amobile device to facilitate collection of card present information. Theuse of the card present information may then be provided to a paymentaccount issuer in order to facilitate completion of a card presenteCommerce transaction. In this regard, the merchant may receive morefavorable transaction processing terms than those associated withtypical eCommerce transactions. For example, the merchant may not becharged a card not present fee from an issuer.

In other embodiments, a card present transaction may be completedutilizing a mobile device at a merchant POS. For example, a merchant mayutilize any number of reader devices to collect card present informationfrom a mobile device. Alternatively, the merchant may collect contactinformation associated with a mobile device, and communication with themobile device may be facilitated in a similar manner as that describedabove with reference to eCommerce transactions. As yet anotheralternative, the mobile device may collect merchant informationassociated with a payment transaction (e.g., merchant identificationinformation, information associated with a particular payment stationsuch as a gas pump or table at a restaurant, location information,etc.), and the mobile device may contact a merchant system and/or aservice provider to facilitate completion of a transaction.

In certain embodiments, including eCommerce and POS embodiments, amerchant may initiate a payment transaction that is pushed to the mobiledevice by a service provider or by the merchant system. For example, acloud to device message (“C2DM”) service or other suitable technique maybe utilized to push a transaction message to a mobile device. In thisregard, a wallet application on the mobile device may be woken up and/orinitiated. The consumer may then utilize the mobile device to reviewtransaction information, approve a payment transaction, provideauthentication information, and/or to provide a wide variety of otherinformation associated with a transaction (e.g., shipping preferences,etc.). Additionally, in certain embodiments, a payment request ortransaction initiated by a first device (e.g., a personal computer,mobile device, etc.) associated with a first user may result in thecommunication of transaction-related information to a second device(e.g., a mobile device) associated with a second user. In this regard,the second user may be permitted to approve a payment transaction madeby the first user. For example, a parent can review transactionsinitiated by a child, and the parent can optionally approve paymenttransactions prior to their completion.

Additionally, in accordance with various embodiments of the disclosure,a consumer may utilize a mobile device to provide a wide variety ofauthentication information in association with a payment transaction. Acard present transaction may request a consumer personal identificationnumber (“PIN”) and/or a signature in order to authenticate thetransaction. In certain embodiments, a mobile device (e.g., inconjunction with a mobile wallet application and/or requests receivedfrom a merchant system and/or a service provider) may prompt the user toenter either a PIN or a signature. As desired, the selection of a PIN ora signature may be based upon a wide variety of different factors, suchas a type of payment account being utilized, merchant preferences,and/or consumer preferences. Additionally, in certain embodiments, suchas embodiments utilizing a dual-branded (e.g., combination credit anddebit account, etc.) payment account, a consumer may be prompted toselect between a PIN and a signature.

In certain embodiments, a mobile PIN (“mPIN”) may facilitateauthentication in conjunction with a payment transaction. For example,during the activation of a payment application and/or during theregistration of a payment application or mobile device with a serviceprovider (e.g., a trusted service manager or other service provider thatfacilitates a wide variety of payment transaction services) and/or apayment account issuer (e.g., a credit card issuer, a debit card issuer,etc.), a consumer (i.e., a user of the mobile device) may be prompted toprovide security data, such as an mPIN. The mPIN may be stored on themobile device, for example, in a secure element of the mobile device.Additionally, the mPIN may be provided to the card issuer (and/or theservice provider).

Subsequently, the consumer may utilize a suitable consumer device (e.g.,the mobile device, a personal computer, etc.) to request a transaction(e.g., a POS transaction, an eCommerce transaction, etc.). Thetransaction may be identified as a card present transaction (e.g., byprocessing mobile device information provided to a merchant system, bythe mobile device being utilized to communicate information to amerchant or service provider system, etc.), and a suitable wallet orpayment application may then be invoked on the mobile device by themerchant or by a suitable service provider. Validation and/or securityinformation (e.g., the mPIN, an encrypted communication including themPIN, etc.) may then be received from the mobile device, and the mPINmay be utilized to validate the transaction. As desired, the consumermay be prompted by the mobile device for the mPIN prior to validationinformation being accessed from the secure element for communication.The validation information may then be submitted by the merchant system(or service provider) to the payment account issuer in conjunction withan authorization request for the eCommerce transaction. In this regard,the validation information may be verified by the issuer utilizing thepreviously received registration information. As a result, strongdynamic two-factor authorization may be achieved by the issuer. Forexample, the issuer may be able to verify both that the consumer wasable to access the secure element and that the information obtained fromthe secure element is correct.

Embodiments of the disclosure now will be described more fullyhereinafter with reference to the accompanying drawings, in whichembodiments of the disclosure are shown. This invention may, however, beembodied in many different forms and should not be construed as limitedto the embodiments set forth herein; rather, these embodiments areprovided so that this disclosure will be thorough and complete, and willfully convey the scope of the invention to those skilled in the art.Like numbers refer to like elements throughout.

System Overview

FIG. 1 represents a block diagram of an example system 100 forfacilitating card present payment transactions, according to oneembodiment of the disclosure. The card present payment transactions mayinclude eCommerce transactions and/or POS transactions. In certainembodiments, the system 100 may facilitate interaction with a consumermobile device in order to process transactions as card presenttransactions. As shown in FIG. 1, the system 100 may include one or moremerchant computers and/or merchant devices 105, one or more consumerdevices 110, and one or more issuer or financial institution systems115. A wide variety of different types of consumer devices 110 may beprovided, such as personal computers 120 and/or mobile devices 125. Asdesired, the system 100 may include a wide variety of other entitiesassociated with payment transactions, such as one or more serviceprovider systems 130. Additionally, in embodiments that facilitate POStransactions, any number of reader devices 133 may be associated withthe merchant computers 105. Any number of suitable networks and/orcommunication channels, such as the illustrated networks 135, 140, mayfacilitate communication between various components of the system 100.

With reference to FIG. 1, any number of merchant computers and/ormerchant devices 105 may be provided. In certain embodiments, thesemerchant devices may include one or more eCommerce devices, such as oneor more Web servers and/or associated systems that facilitate eCommercetransactions. In other embodiments, these merchant devices may includeone or more merchant POS systems. As desired, each merchant device mayinclude any number of processor-driven devices, including but notlimited to, a server computer, a mainframe computer, one or morenetworked computers, a desktop computer, a personal computer, a laptopcomputer, a mobile computer, an application-specific circuit, or anyother processor-based device.

A merchant computer 105 may be any suitable device that facilitatespayment transactions. In eCommerce scenarios, the merchant computer 105may utilize one or more processors 150 to execute computer-readableinstructions that facilitate the hosting of one or more eCommerceservices (e.g., the hosting of one or more eCommerce Web sites), thereceipt of purchase transaction requests, and/or the processing ofeCommerce transactions. As a result of executing these computer-readableinstructions, a special purpose computer or particular machine may beformed that facilitates the eCommerce transactions, including cardpresent eCommerce transactions. In POS scenarios, the merchant computer105 may utilize the one or more processors 150 to facilitate a POSpayment transaction. For example, the one or more processors 150 mayexecute computer-readable instructions that facilitate the collection ofpayment-related information (e.g., account information, authenticationinformation, etc.) from a mobile device 125, and the completion of apayment transaction utilizing collected information. As a result ofexecuting these computer-readable instructions, a special purposecomputer or particular machine may be formed that facilitates cardpresent transactions at a POS.

In addition to having one or more processors 150, the merchant computer105 may further include and/or be associated with one or more memorydevices (referred to herein as memory 151), input/output (“I/O”)interface(s) 152, and/or network interface(s) 153. The memory 151 may beany computer-readable medium, coupled to the processor(s) 150, such asrandom access memory (“RAM”), read-only memory (“ROM”), and/or aremovable storage device. The memory 151 may store a wide variety ofdata files 154 and/or various program modules, such as an operatingsystem (“OS”) 155, one or more host modules 156, and/or one or moretransaction modules or transaction applications 157. The data files 154may include any suitable data that facilitates the operation of themerchant computer 105 and/or the interaction of the merchant computer105 with one or more other components (e.g., one or more consumerdevices 110, one or more service provider systems 130, one or moremerchant acquiring platforms, one or more issuer systems 115, etc.) ofthe system 100. For example, the data files 154 may include informationassociated with eCommerce Web pages, one or more reader devices 133,inventory information associated with available products, acquiringplatform information, service provider information, informationassociated with the generation of proposed payment transactions and/orrouting information for proposed transactions.

The OS 155 may be a suitable module that facilitates the generaloperation of the merchant computer 105, as well as the execution ofother program modules. For example, the OS 155 may be, but is notlimited to, Microsoft Windows®, Apple OSX™, Unix, a mainframe computeroperating system (e.g., IBM z/OS, MVS, OS/390, etc.), or a speciallydesigned operating system. The host modules 156 may include any numberof suitable host modules that manage interactions and communicationsbetween the merchant computer 105 and external devices, such as theconsumer devices 110 and/or the reader devices 133. For example, thehost modules 156 may include one or more Web server modules thatfacilitate the hosting of merchant Web pages and/or transactionprocessing Web pages. As another example, the host modules 156 mayinclude one or more cellular modules and/or systems that facilitatecellular communication with one or more mobile devices 125.

The transaction modules or applications 157 may include any number ofsuitable software modules and/or applications that facilitate thecollection and/or processing of information associated with a paymenttransaction, such as one or more identifiers of desired products (e.g.,UPC identifiers) and/or services, a desired payment account, a desiredtype of transaction (e.g., a card present transaction, a card notpresent transaction, etc.), consumer identification information, and/oran identifier of a consumer device 110 (e.g., a mobile deviceidentifier, etc.). Based at least in part upon the collectedinformation, the transaction module 157 may generate and/or communicatea wide variety of transaction-related requests, such as paymentprocessing and/or authorization requests, requests for one or more valueadded services (“VAS”), and/or requests for transaction approval (e.g.,an approval request in a multi-user scenario).

In one example operation, a transaction module 157 may receive a requestfor a payment transaction (e.g., an eCommerce request provided via a Webpage, a POS request, etc.). As desired, the transaction module 157 mayidentify available payment options that are presented to a consumer(e.g., credit account payment options, debit account payment options,stored value account payment options, card present eCommerce paymentoptions, etc.), and a consumer selection of a payment option may bereceived. In the event that a card present transaction is requested, thetransaction module 157 may obtain a mobile device identifier, forexample, via an established communications session with a consumer'smobile device 125 or in response to requesting the mobile deviceidentifier from the consumer. Alternatively, the transaction module 157may present information (e.g., a transaction-specific code, etc.) that aconsumer enters into the mobile device (e.g., enters into a walletapplication, etc.) to initiate a card present transaction.

In the event that a mobile device identifier is provided to thetransaction module 157, the transaction module 157 may invoke or requestthat a service provider system 130 invoke one or more suitableapplications on the mobile device 125 (e.g., a wallet application, atransaction module, etc.) in order to receive a consumer approval forthe transaction. Additionally, the applications may be invoked in orderto receive authentication and/or validation information from the mobiledevice 125, such as a signature, an mPIN, a message (e.g., an encryptedmessage, etc.) derived from a signature and/or an mPIN, and/or otherinformation (e.g., a secure element identifier, an encryption key,etc.). The transaction module 157 (or service provider system 130) maythen associate the validation information with a proposed transactionthat is output for communication to an issuer system 115 associated witha selected payment account. For example, the transaction module 157 mayappend and/or incorporate the validation information into a transactionauthorization and/or settlement request. In this regard, the issuersystem 115 may verify the validation information and determine whether acard present eCommerce transaction will be allowed.

Alternatively, in the event that presented information, such as a code,is entered into the mobile device 125 by the consumer, the mobile device125 and/or one or more associated applications (e.g., a walletapplication, etc.) may initiate communication with a service providersystem 130 (or merchant computer 105) in order to complete and/orauthenticate a payment transaction. Transaction approval and/orauthentication information may then be received in a similar manner asthat set forth above.

As desired, prior to the output of a proposed transaction, thetransaction module 157 may invoke and/or request (e.g., request aservice provider system 130, etc.) the invocation of a wide variety ofVAS associated with a transaction, such as the application of coupons,the award and/or redemption of loyalty rewards, etc. Additionally, inthe event that the transaction is authorized, the transaction module 157may invoke and/or request the invocation of a wide variety of VASfollowing the transaction, such as receipt delivery services, productregistration services, etc. Indeed, a wide variety of suitableoperations may be performed by the transaction module 157.

A few examples of the operations that may be performed by a transactionmodule 157 and/or the merchant computer 105 are described in greaterdetail below with reference to FIGS. 2 and 4-6.

With continued reference to the merchant computer 105, the one or moreI/O interfaces 152 may facilitate communication between the merchantcomputer 105 and one or more input/output devices; for example, one ormore user interface devices, such as a display, a keypad, a mouse, apointing device, a control panel, a touch screen display, a remotecontrol, a microphone, a speaker, a consumer device reader, etc., thatfacilitate user interaction with the merchant computer 105. As desired,the I/O interfaces 152 may also facilitate communication with any numberof reader devices 133. The one or more network interfaces 153 mayfacilitate connection of the merchant computer 105 to one or moresuitable networks and/or communication links. In this regard, themerchant computer 105 may receive and/or communicate information toother components of the system 100, such as the consumer devices 110,the service provider systems 130, and/or the issuer systems 115.

In embodiments in which a merchant computer 105 is situated at a POS,any number of suitable reader devices 133 may be associated with themerchant computer 105. Examples of suitable reader devices 133 include,but are not limited to, a near field communication reader, a radiofrequency reader, a Bluetooth reader, or other suitable reader device.In other embodiments, a mobile device 125 may function as a virtualreader device that collects merchant contextual and payment informationassociated with a merchant. Thus, even if a suitable merchant readerdevice (e.g., an NFC reader, an RF reader, etc.) is not located at orassociated with a merchant POS device, a transaction may still befacilitated at the point of sale or point of service.

Additionally, with continued reference to FIG. 1, any number of consumerdevices 110 may be provided. Examples of suitable consumer devices 110include, but are not limited to, personal computers 120 and/or mobiledevices 125 (e.g., mobile phones, smart phones, etc.). According to anaspect of the disclosure, a consumer device 110 may be a suitable devicethat is capable of interaction with other components of the system 100during the request and/or completion of a payment transaction. Forexample, a personal computer 120 or a mobile device 125 may be utilizedto access one or more eCommerce Web sites hosted by the merchantcomputer 105, identify products and/or services to be purchased, requesta purchase transaction, and/or interact with the merchant computer 105and/or other components of the system 100 (e.g., the service providersystems 130, etc.) during the completion of a purchase transaction. Asanother example, a mobile device 125 may be utilized to complete atransaction at a POS. In one example embodiment, a mobile device 125 maybe utilized to request a card present transaction and/or to providevalidation information during the processing of the card presenttransaction. As desired, the card present transaction may be aneCommerce transaction, a transaction in which the mobile device 125functions as a virtual reader, and/or a transaction in which the mobiledevice 125 interacts with one or more reader devices 133 at a POS. Inanother example embodiment, a personal computer 120 may be utilized torequest a card present transaction, such as an eCommerce card presenttransaction, and communication may be established with a mobile device125 in order to facilitate provision of validation information.

As desired, a consumer device 110 may include any number ofprocessor-driven devices, including but not limited to, a personalcomputer, a mobile computer, an application-specific circuit, aminicomputer, a microcontroller, and/or any other processor-baseddevice. The components of an example mobile device 125 will now bedescribed in greater detail, and it will be appreciated that a personalcomputer 120 may include similar components. With reference to themobile device 125, the mobile device 125 may utilize one or moreprocessors 160 to execute computer-readable instructions that facilitatethe general operation of the mobile device 125 (e.g., callfunctionality, etc.) and/or communication with a merchant computer 105and/or other components of the system 100 (e.g., the service providersystems 130) for eCommerce and/or payment transaction purposes. As aresult of executing these computer-readable instructions, a specialpurpose computer or particular machine may be formed that facilitatesthe completion and/or validation of payment transactions.

In addition to having one or more processors 160, the mobile device 125may further include and/or be associated with one or more memory devices(referred to herein as memory 161), input/output (“I/O”) interface(s)162, and/or network interface(s) 163. The memory 161 may be anycomputer-readable medium, coupled to the processor(s) 160, such asrandom access memory (“RAM”), read-only memory (“ROM”), and/or aremovable storage device. The memory 161 may store a wide variety ofdata files 164 and/or various program modules, such as an operatingsystem (“OS”) 165 and/or one or more transaction modules or applications167. In certain embodiments, a mobile device 125 may include one or moresecure elements 166 configured to securely store and/or accessinformation, such as payment applications, payment account information,authentication and/or validation information (e.g., a stored mPIN,etc.), authentication preferences, encryption information, and/or othertransaction-related information. The secure elements 166 may be storedin the memory 161 and/or included as a separate component of the mobiledevice 125. For example, a secure element 166 may be a separate chipthat is configured to communicate with primary computing functionalityfor the mobile device 125. As desired, one or more of the transactionmodules 167 may be stored on a secure element 166. These transactionmodules 167 may be invoked by other components of the mobile device 125and/or by one or more other components of the system 100, such as themerchant computer 105 and/or the service provider systems 130. In oneexample embodiment, transaction modules associated with various paymentaccounts may be stored on the secure element 166, and a transactionmodule that functions as a wallet application may be stored in thememory 161. The wallet application may then invoke and/or communicatewith the payment account transaction modules.

The data files 164 may include any suitable data that facilitates theoperation of the mobile device 125 and/or the interaction of the mobiledevice 125 with one or more other components (e.g., a merchant computer105, a service provider system 130, etc.) of the system 100. Forexample, the data files 164 may include information associated withaccessing the secure elements 166, information associated with invokingtransaction modules 167, and/or information associated with collecting,accessing, and/or processing validation data (e.g., an mPIN, asignature, etc.). The OS 165 may be a suitable module that facilitatesthe general operation of the mobile device 125, as well as the executionof other program modules. For example, the OS 165 may be, but is notlimited to, a suitable mobile OS or a specially designed operatingsystem. As desired, the mobile device 125 may also include one or moresuitable browser applications that facilitate the access of one or moreWeb pages hosted by the merchant computer 105.

The transaction modules 167 may include one or more suitable softwaremodules and/or applications configured to facilitate paymenttransactions, such as card present transactions, on behalf of the mobiledevice 125. In certain embodiments, a transaction module 167 may alsofacilitate communication with a service provider system 130, such as atrusted service manager, and/or communication with a merchant computer105 or merchant system. A wide variety of suitable techniques may beutilized to install a transaction module 167 on the mobile device 125.For example, a transaction module 167 may be provisioned to the mobiledevice 125 by a service provider system 130 and/or by an issuer system115. Additionally, as desired, during the installation and/orregistration of the transaction module 167, a wide variety of validationinformation may be generated and/or identified. For example, theconsumer may be prompted to enter an mPIN, such as a multi-characterand/or multi-numeral code. As desired, the mPIN may be stored on asecure element 166. Additionally, the mPIN and/or a wide variety ofinformation derived from the mPIN (e.g., an encrypted mPIN, etc.) may beprovided to one or more issuer systems 115, such as an issuer system 115associated with an issuer of a payment account (e.g., a credit account,a debit account, a stored value account, etc.) that is associated withthe transaction module 167. As desired, a wide variety of transactionprocessing parameters may be stored in association with the transactionmodule, such as validation and/or authentication preferences (e.g.,signature and/or PIN preferences, etc.), transaction approvalpreferences, multi-user approval preferences, and/or preferencesassociated with various value added services.

According to an aspect of the disclosure, following registration and/oractivation of the transaction module 167, the transaction module 167 maybe invoked during a payment transaction. For example, the transactionmodule 167 may be invoked by a merchant computer 105 or by a serviceprovider system 130 at the request of the merchant computer 105. Incertain embodiments, the transaction module 167 may be invoked followinga consumer request to conduct a card present transaction and theidentification of the mobile device 125 by the merchant computer 105 (orservice provider system 130). Alternatively, in other embodiments, thetransaction module 167 may contact a merchant system or a serviceprovider system 130 in order to initiate a payment transaction. Forexample, a user may enter a transaction-specific code or otherinformation into the mobile device 125, and the transaction module 167may provide the transaction-specific code to a merchant computer 105 ora service provider system 130 in association with a transaction request.As another example, the mobile device 125 may function as a virtualreader that collects transaction and/or merchant information, and thetransaction module 167 may utilize at least a portion of the collectedinformation to communicate with a merchant and/or service providersystem to initiate a payment transaction.

In certain embodiments, following the invocation of the transactionmodule 167 (or the initiation of a payment transaction by thetransaction module 167), a request for validation data (e.g., asignature, a PIN, an mPIN, etc.) and/or payment account data may bereceived by the transaction module 167. For example, a request may bereceived from a merchant computer 105 and/or a service provider system130. As desired, a type of requested validation data (e.g., a PIN or asignature) may be based upon a wide variety of different factors, suchas a type of payment account being utilized (e.g., a debit account, acredit account, etc.), parameters associated with the payment account,merchant preferences, and/or consumer preferences. Additionally, incertain embodiments, such as embodiments utilizing a dual-branded (e.g.,combination credit and debit account, etc.) payment account, a consumermay be prompted to select between a PIN and a signature.

As desired, the transaction module 167 may prompt the consumer for entryof validation data, such as a signature and/or an mPIN, and the customermay enter the requested information via any suitable I/O devices, suchas a keypad, a touch screen, etc. As desired, stored validation data maybe accessed from the secure element 166 and compared to the enteredinformation. For example, a stored mPIN value may be accessed from thesecure element 166 and compared to an entered mPIN value. In thisregard, the mobile device 125 and/or the transaction module 167 mayvalidate the validation information. If entered information is notauthenticated, then the transaction module 167 may reject a proposedtransaction and direct the output of a suitable error message.

If, however, the entered validation information is authenticated by themobile device 125, then the transaction module 167 may provide paymentaccount data and associated validation data to the merchant computer 105(or a service provider system 130). A wide variety of different types ofvalidation data may be provided as desired in various embodimentsincluding, but not limited to, a signature, an mPIN entered by theconsumer, an indication that the entered mPIN was authenticated by themobile device 125 and/or the secure element 166, an encrypted version ofthe entered mPIN, and/or an encrypted version of the stored mPIN. In oneexample embodiment, an entered mPIN may be authenticated, encrypted, andprovided to the merchant computer 105 (or a service provider system130). In this regard, the encrypted mPIN may be provided to the issuersystem 115 for authentication and/or risk analysis purposes.

Additionally, in certain embodiments, the transaction module 167 mayfacilitate consumer approval of any number of proposed paymenttransactions. For example, a merchant computer 105 may initiate apayment transaction (e.g., a POS transaction, an eCommerce transaction,etc.) that is pushed to the mobile device by the service provider system130 or by a merchant system. For example, a cloud to device message(“C2DM”) service or other suitable technique may be utilized to push atransaction message to a mobile device 125. In this regard, atransaction module 167 on the mobile device may be woken up and/orinitiated. The consumer may then utilize the mobile device 125 to reviewtransaction information, approve a payment transaction, provideauthentication information, and/or to provide a wide variety of otherinformation associated with a transaction (e.g., shipping information,requests for electronic and/or paper receipts, requests for protectionplans and/or warranties, various VAS information, etc.). As anotherexample, in certain embodiments, a payment request or transactioninitiated by a first device (e.g., a personal computer, a first mobiledevice, etc.) associated with a first user may result in thecommunication of transaction-related information to a second device(e.g., a mobile device) associated with a second user. In this regard,the second user may be permitted to review and/or approve a paymenttransaction made by the first user. For example, a parent can reviewtransactions initiated by a child, and the parent can optionally approvepayments transactions prior to their completion.

A few examples of the operations of the transaction module 167 and/orthe mobile device 125 are described in greater detail below withreference to FIGS. 3-6.

The one or more I/O interfaces 162 may facilitate communication betweenthe mobile device 125 and one or more input/output devices; for example,one or more user interface devices, such as a display, a keypad, a touchscreen display, a microphone, a speaker, etc., that facilitate userinteraction with the mobile device 125. The one or more networkinterfaces 163 may facilitate connection of the mobile device 125 to oneor more suitable networks, for example, the network(s) 135 illustratedin FIG. 1. In this regard, the mobile device 125 may receive and/orcommunicate information to other components of the system 100.

With continued reference to FIG. 1, as desired in various embodiments,any number of issuer and/or financial institution systems 115 may beprovided. An issuer system 115 may facilitate the backend processing ofa proposed transaction, such as a proposed card present transaction. Forexample, an issuer system 115 may facilitate the approval,authentication, and/or settlement of a proposed transaction. In certainembodiments, a proposed transaction may be routed to an issuer system115 via a suitable transaction network 140 (e.g., a debit network, acredit network, etc.), and the issuer system 115 may evaluate theproposed transaction. An approval or rejection of the proposedtransaction may then be output for communication to a merchant computer105. The issuer system 115 may then facilitate the settlement of theproposed transaction. In certain embodiments, an issuer system 115 mayinclude similar components as those discussed above for the merchantcomputer 105. For example, an issuer system 115 may include any numberof processors, memories, I/O interfaces, and/or network interfaces.

According to an aspect of the disclosure, an issuer system 115 mayreceive validation information in association with a proposed eCommercetransaction. For example, the issuer system 115 may receive an encryptedmPIN (or signature) and/or data derived from an mPIN (e.g., a dynamichash of the mPIN, etc.). In other words, the mPIN may not becommunicated in the clear to the issuer system 115. The issuer system115 may compare at least a portion of the received validationinformation to information previously stored by the issuer system 115,such as an mPIN stored during the registration and/or activation of atransaction module 167. In this regard, the issuer system 115 maydetermine whether to authenticate a proposed transaction and/or whetherto permit the proposed transaction to be processed as a card presenttransaction. In certain embodiments, the evaluation of receivedvalidation information may determine both that a correct mPIN wasentered by a consumer and validated by the secure element 166 and thatcorrect validation information (e.g., an encrypted mPIN) was output bythe mobile device 125. In this regard, strong dynamic two-factorauthentication may be performed by the issuer system 115. Thisauthentication may provide comparable security to that provided atbrick-and-mortar or physical merchant locations. Additionally, incertain embodiments, this authentication can be reused for a widevariety of Federated Authentication purposes.

With continued reference to FIG. 1, any number of service providersystems 130 and/or service provider computers may be utilized as desiredin various embodiments of the disclosure. As desired, a service providersystem 130 may provide a wide variety of transaction module provisioningservices. For example, the service provider system 130 may pushtransaction approval requests, including requests initiated by amerchant system and/or requests associated with a multi-user scenario,to a mobile device 125. A wide variety of suitable types of messagesand/or requests may be communicated as desired, such as C2DM servicerequests. In certain embodiments, a pushed request may facilitateinitiation of a transaction module 167 (e.g., a wallet application,etc.) on the mobile device 125. For example, a request may activate awallet application. As another example, selection of a message orrequest by the consumer may result in the launching of the walletapplication. As a result of pushing requests to a mobile device 125, aconsumer may approve proposed payment transactions and/or utilize themobile device 125 to provide validation and/or authenticationinformation.

Additionally, a service provider system 130 may provide a wide varietyof transaction-related and/or value added services (“VAS”) inassociation with transactions, such as coupon redemption services,loyalty services, location-based services, electronic receipt services,product registration services, warranty services, coupon issuanceservices, and/or the routing of a proposed transaction to an issuer forapproval and/or settlement purposes. In certain embodiments, a serviceprovider system 130 may include similar components as those discussedabove for the merchant computer 105. For example, a service providersystem 130 may include any number of processors, memories, I/Ointerfaces, and/or network interfaces.

A wide variety of suitable networks 135, 140 may be utilized inassociation with embodiments of the disclosure. Certain networks 135 mayfacilitate a wide variety of POS and/or eCommerce-related communication.For example, one or more telecommunication networks, cellular networks,wide area networks (e.g., the Internet), local area networks, Wi-Fienabled networks, Bluetooth-enabled networks, and/or other networks maybe provided. Other networks may facilitate transaction-relatedcommunications. For example, one or more transaction networks 140, suchas branded networks (e.g., a VISA network, etc.), debit and/or PINnetworks, and/or a wide variety of other suitable transaction networksmay facilitate communication of transaction-related communications, suchas proposed transactions. Due to network connectivity, variousmethodologies as described herein may be practiced in the context ofdistributed computing environments. It will also be appreciated that thevarious networks may include a plurality of networks, each with devicessuch as gateways and routers for providing connectivity between or amongnetworks. Additionally, instead of, or in addition to, a network,dedicated communication links may be used to connect various devices inaccordance with an example embodiment.

The system 100 shown in and described with respect to FIG. 1 is providedby way of example only. Numerous other operating environments, systemarchitectures, and device configurations are possible. Other systemembodiments can include fewer or greater numbers of components and mayincorporate some or all of the functionalities described with respect tothe system components shown in FIG. 1. Accordingly, embodiments of thedisclosure should not be construed as being limited to any particularoperating environment, system architecture, or device configuration.

Operational Overview

FIG. 2 illustrates a flow diagram of an example method 200 forfacilitating a card present transaction at a merchant system, accordingto example embodiments of the disclosure. In certain embodiments, theoperations of the method 200 may be performed by a suitable merchantcomputer, such as the merchant computer 105 illustrated in FIG. 1. Themethod 200 may begin at block 205.

At block 205, a request for a payment transaction, such as an eCommercetransaction, may be received. For example, a consumer may utilize aconsumer device 110, such as a personal computer 120 or a mobile device125, to navigate through one or more Web pages associated with themerchant computer 105, and the consumer may select one or more productsand/or services to purchase. The consumer may then select an availableoption for requesting an eCommerce transaction. For example, theconsumer may select a suitable “checkout” option provided by the one ormore Web pages. Although an eCommerce transaction is described in FIG.2, various operations of the method 200 may be utilized in conjunctionwith POS transactions.

At block 210, one or more payment options may be identified by themerchant computer 105 and provided or communicated to the consumerdevice 110 for presentation to the consumer. A wide variety of suitablepayment options may be identified and provided as desired in variousembodiments of the disclosure, such as indications of supported paymentnetworks (e.g., credit networks, debit networks, etc.) and/orindications of supported payment devices and/or payment accounts (e.g.,credit accounts, debit accounts, stored value accounts, etc.). Accordingto an aspect of the disclosure, at least one option for a card presentpayment may be identified and provided. For example, an option toutilize a mobile device 125 and/or an associated transaction module 167to complete a card present eCommerce transaction may be identified andprovided.

At block 215, a consumer selection of a desired payment option may bereceived from the consumer device 110. According to an aspect of thedisclosure, the consumer selection may be a selection for a card presenttransaction. At block 220, a determination may be made as to whether amobile device identifier, such as a telephone number of a mobile device125, is available. In embodiments in which the consumer utilizes amobile device 125 to request an eCommerce transaction, a mobile deviceidentifier may be pulled from the mobile device 125. For example, amobile device identifier may be pulled if the user is utilizing abrowser application or other application (e.g., a dedicated merchantapplication, etc.) to shop with the mobile device 125. In embodiments inwhich the consumer utilizes another consumer device 110, such as apersonal computer 120 to request an eCommerce transaction, a request fora mobile device identifier may be communicated to the consumer device110, and the mobile device identifier may be received in response to therequest. If it is determined at block 220 that a mobile deviceidentifier is not available, then operations may continue at block 225,and a request for a mobile device identifier may be communicated to theconsumer device 110. For example, a suitable Web page or other graphicaluser interface may prompt the consumer to enter a mobile telephonenumber in order to complete a card present transaction. The mobiledevice identifier may then be received in response to the request, andoperations may continue at block 230. If, however, it is determined atblock 220 that a mobile device identifier is available, then operationsmay continue at block 230.

As an alternative to requesting a mobile device identifier, as explainedin greater detail below with reference to FIG. 4, a transaction-specificcode (or other identifier) may be output for presentation to theconsumer. In certain embodiments, the transaction-specific code may alsobe communicated to a service provider system 130. The consumer may enterthe transaction-specific code into the mobile device 125, and atransaction module 167 may communicate the code to the service providersystem 130 in order to initiate a payment transaction.

At block 230, which may be reached from either block 220 or block 225, asuitable wallet application or transaction module may be invoked on themobile device 125. For example, a transaction module associated with adesired payment account may be invoked. In certain embodiments, themerchant computer 105 may invoke the transaction module. In otherembodiments, the merchant computer 105 may direct or request anotherdevice or system, such as a suitable service provider system 130, toinvoke the transaction module. During the invocation of the transactionmodule, a wide variety of different types of validation information maybe requested from the mobile device 125, such as a signature or a valuederived from an mPIN (e.g., an encrypted mPIN, a dynamic hash valuederived from an mPIN, etc.).

At block 235, validation information and payment account information maybe received from the mobile device 125. The received information maythen be utilized at block 240 to generate and/or submit a proposedtransaction to an issuer system, such as the issuer system 115illustrated in FIG. 1. In certain embodiments, a wide variety oftransaction-related information, such as a purchase amount, paymentaccount information, a request for a card present transaction, and/orvalidation information may be included in a proposed transaction.Additionally, in certain embodiments, a proposed transaction or atransaction request may be routed to an issuer system 115 via one ormore other systems, such as a service provider system 130 or a merchantacquiring platform. Further, in certain embodiments, one or morerequests for VAS may be generated by the merchant computer 105 andcommunicated to a service provider system 130 for processing.

The method 200 may end following block 240.

FIG. 3 illustrates a flow diagram of an example method 300 forcompleting a card present transaction utilizing a consumer device,according to an example embodiment of the disclosure. In certainembodiments, the operations of the method 300 may be performed by one ormore suitable consumer devices, such as the consumer devices 110illustrated in FIG. 1. The method 300 may begin at block 305.

At block 305, a payment application or other suitabletransaction-related application may be provided to a mobile device of aconsumer, such as the mobile device 125 illustrated in FIG. 1. Forexample, a payment application or mobile wallet application may beprovisioned to the mobile device 125 by a payment account issuer (e.g.,an issuer of a payment account associated with the application, etc.), atrusted service manager, or another suitable service provider. Asdesired, the application may be stored on a secure element of the mobiledevice 125. Additionally, the application may be activated and/orregistered by the mobile device 125 in order to facilitate use of theapplication in subsequent transactions, such as subsequent card presenttransactions. For example, the application may be registered with apayment account issuer or with another service provider.

During the registration, the consumer may be prompted to enter orotherwise provide security and/or validation information, such as anmPIN. At block 310, an mPIN (and/or other security information) may beentered by the consumer and received by the mobile device 125. Incertain embodiments, the received mPIN may be stored in a secure elementof the mobile device 125 for use in subsequent transactionauthentications. Additionally, at block 315, the mPIN and/or a valuederived from the mPIN (e.g., an encrypted mPIN, a dynamic hash of themPIN, etc.) may be output by the mobile device 125 for communication toone or more payment account issuers associated with the paymentapplication. In this regard, an issuer may store the mPIN-relatedinformation for use in subsequent transaction authentications.

At block 320, the consumer may utilize a suitable consumer device 110,such as the mobile device 125, a personal computer 120, or anotherconsumer device, to establish communication with a merchant Web site andto request a transaction. For example, a consumer device 110 may beutilized to navigate one or more Web pages hosted by a merchant computer105, to select products and/or services to be purchased, and to requesta purchase transaction associated with the selected items. As explainedin greater detail above with reference to FIG. 2, the consumer mayrequest a card present transaction, and identification information forthe mobile device 125 may be identified by the merchant computer 105 inassociation with the requested card present transaction. Alternatively,a consumer may utilize a mobile device 125 in association with arequested transaction (e.g., a checkout transaction) at a POS.

Although payment transactions have been described above as purchasetransaction (e.g., eCommerce transactions, POS transactions, etc.), awide variety of other types of payment transactions may be initiatedand/or utilized. For example, a consumer may utilize a consumer device110 to receive and/or access a wide variety of bill presentment and/orother billing information, and the consumer may request a payment inconjunction with a bill or bill presentment. In one example embodiment,bill presentment information may be received via a wide variety ofsuitable techniques, such as short message service (“SMS”) messaging(e.g., a text message asking the consumer to pay a bill, etc.), deliveryvia a Web page or other Internet-based communication, and/or deliveryvia a dedicated application (e.g., an application associated with abiller, etc.). In conjunction with a bill presentment, the consumer mayrequest payment of an outstanding bill be made. In this regard, theshopping experience described above may be replaced with a billpresentment experience. Additionally, a payment may be made utilizingthe same or similar payment network(s) as those described for a shoppingexperience.

At block 325, the payment application stored on the mobile device 125may be invoked, and a request for validation data and/or payment accountdata may be received. For example, the payment application may beinvoked by the merchant computer 105 or by a suitable service providersystem 130. Based at least in part upon the received request forvalidation data, at block 330, the mobile device 125 may prompt theconsumer to enter an mPIN. The consumer may utilize one or more suitableinput devices associated with the mobile device 125 (e.g., a touchpad, atouch screen, etc.) to enter an mPIN, and the received consumer inputfor the mPIN may be received by the mobile device 125 at block 335.Additionally, the consumer may be provided with transaction-relateddetails, and the consumer may be requested to approve the transaction.

At block 340, the received or entered mPIN may be validated by themobile device 125. For example, the received mPIN may be compared to anmPIN value stored on a secure element of the mobile device 125. In theevent that a correspondence is identified, the received mPIN may bevalidated by the mobile device 125 and/or the secure element.Accordingly, the mobile device 125 may determine that the consumer isauthorized to request a card present payment transaction utilizing thepayment application.

At block 345, validation information to be output may be prepared by themobile device 125 and/or secure element. For example, an encrypted mPIN,a dynamic hash value derived from the mPIN, and/or another value derivedfrom the mPIN may be prepared. The validation information and paymentaccount data may then be provided to the merchant computer 105 (or aservice provider system) in order to facilitate completion of a cardpresent transaction. In this regard, a proposed transaction or atransaction request may be routed to an issuer system 115 at the requestof the merchant computer 105 or one or more other systems, such as aservice provider system. According to an aspect of the disclosure, theproposed transaction may include or otherwise be associated with thevalidation information output by the mobile device 125.

An issuer to which the proposed transaction is communicated may compareat least a portion of the validation information to informationpreviously stored by the issuer, such as an mPIN stored during theregistration and/or activation of a payment application. In this regard,the issuer may determine whether to authenticate a proposed card presenteCommerce transaction. In certain embodiments, the evaluation ofreceived validation information may determine both that a correct mPINwas entered by a consumer and validated by the secure element and thatcorrect validation information (e.g., an encrypted mPIN) was output bythe mobile device 125. In this regard, strong dynamic two-factorauthentication may be performed by the issuer.

The method 300 may end following block 345.

FIG. 4 illustrates a flow diagram of an example method 400 forfacilitating a merchant-initiated card present transaction by a serviceprovider, according to example embodiments of the disclosure. Variousoperations of the method 400 may be performed by components of thesystem 100 illustrated in FIG. 1. In one embodiment, the operations ofthe method 400 may be performed by a suitable service provider system130. In other embodiments, certain operations may be performed by amerchant computer 105 and/or by a combination of a merchant computer 105and a service provider system 130. The method 400 may begin at block405.

At block 405, a request to initiate a payment transaction may bereceived. In one example embodiment, a request to initiate a paymenttransaction may be received by a service provider system 130 from amerchant computer 105. The request may include a wide variety ofinformation associated with the payment transaction, such asidentification information for a mobile device 125, identificationinformation for a consumer, payment account information, and/or atransaction amount.

At block 410, a determination may be made as to whether a mobileidentifier (i.e., a phone number or other identifier of a mobile device125 associated with a consumer) is available. For example, adetermination may be made as to whether a mobile identifier is includedin the request received from the merchant computer 105. In certainembodiments, the merchant computer 105 may obtain the mobile identifierbased upon interaction between the mobile computer 105 and the mobiledevice 125 (e.g., communication with a mobile device browser during aneCommerce environment, communication with a dedicated application on themobile device 125, communication with the mobile device 125 at a POS,etc.). In other embodiments, the merchant computer 105 may prompt aconsumer to provide a mobile device identifier, and the merchantcomputer 105 may communicate received information to the serviceprovider computer. As another example of determining whether a mobileidentifier is available, a determination may be made as to whether astored mobile identifier is available. For example, consumeridentification information (e.g., a consumer name, etc.) and/or paymentaccount information (if available) may be utilized to access a database(or to send a data request to a remote data source) including mobileidentifiers, and a determination may be made as to whether a mobileidentifier is available for the proposed payment transaction.

If it is determined at block 410 that a mobile identifier is available,then operations may continue at block 415. At block 415, a message maybe communicated to the mobile device 125 in order to facilitate wakingup, initiating, and/or launching a mobile wallet application (and/or apayment account application) associated with the mobile device 125. Awide variety of different types of messages may be communicated to themobile device 125 as desired in various embodiments. Additionally, awide variety of suitable communication techniques may be utilized, suchas various messaging services, short message service (“SMS”) messaging,email, etc. In one example embodiment, a C2DM service message (or othersuitable push message notification) may be communicated to the mobiledevice 125. In certain embodiments, a C2DM service message mayautomatically wake up or launch a wallet application. In otherembodiments, the notification may be presented to a consumer (i.e., auser of the mobile device 125), and selection of the message orselection of a link included in the message may facilitate the waking upor launching of the wallet application. Once the wallet application hasbeen activated, communication may be established between the serviceprovider system 130 and the wallet application, and operations maycontinue at block 430 below.

If, however, it is determined at block 410 that a mobile identifier isnot available, then operations may continue at block 420. At block 420,a message may be communicated to the merchant computer 105 instructingthe merchant computer to output or present a code (or othertransaction-specific information) that the consumer may enter into themobile device 125 utilizing the mobile wallet application. In otherembodiments, the merchant computer 105 may output or present a codewithout being instructed or prompted to do so. As a result of a codebeing entered into a mobile device 125, the mobile device 125 (and anassociated mobile wallet application) may initiate communication withthe service provider system 130, and additional security may be providedfor the mobile identifier. For example, the spamming of mobileidentifiers entered via a Web site or other network connection may beprevented. Alternatively, if it is determined at block 410 that a mobileidentifier is not available, then a request for the mobile identifiermay be communicated to the merchant computer 105, and the merchantcomputer 105 may prompt the consumer to enter a mobile identifier. Anentered mobile identifier may then be communicated to the serviceprovider system 130 and utilized to invoke the mobile walletapplication.

At block 425, a code may be received from the mobile device 125. Forexample, a code output by the merchant computer 105 may be entered intothe mobile device 125 by a consumer, and the code may be communicated bythe mobile device 125 to the service provider system 130. As desired,the code may be encrypted and/or otherwise modified before communicationand receipt by the service provider system 130. The received code may becompared to one or more codes received from the merchant computer 105 inorder to identify a relevant payment transaction. In this regard,information associated with the payment transaction (e.g., a paymentamount, information associated with desired VAS, etc.) may be accessedand/or identified. Operations may then continue at block 430.

At block 430, which may be reached from either block 415 or block 425, awide variety of suitable transaction data may be communicated to themobile device 125. Examples of suitable transaction data include, butare not limited to, a payment amount, information associated withpurchased items and/or services, information associated with themerchant, and/or information associated with one or more VAS.Additionally, at block 435, approval of the payment transaction and/orauthentication information (e.g., a signature, a PIN, an mPIN, etc.)associated with the consumer and/or a payment account may be requested.In this regard, a consumer may review a payment transaction utilizing amobile device 125, and the consumer may approve the payment transaction.For example, a consumer may participate in an eCommerce transaction or aPOS transaction, and the consumer may then utilize his/her mobile device125 to review and/or approve the payment transaction. In certainembodiments, as described in greater detail below with reference to FIG.6, a consumer may approve a payment transaction made by another consumerin a multi-user scenario. Additionally, as described in greater detailbelow with reference to FIG. 5, a consumer may utilize the mobile device125 to provide a wide variety of different types of authenticationand/or validation information associated with a payment account, mobilewallet application, and/or the mobile device 125. As desired in certainembodiments, the consumer may also provide a wide variety of informationassociated with desired VAS and/or VAS preferences. For example, theconsumer may provide information associated with desired shippingpreferences, electronic receipt preferences, warranty preferences, etc.

At block 440, user approval and/or authentication information may bereceived from the mobile device 125. The received approval and/orauthentication information may then be processed at block 445 in orderto facilitate completion of the transaction. For example, transactionand authentication information may be communicated to an issuer system115 to facilitate completion of the transaction. Additionally, a widevariety of additional transaction-related and/or VAS information may becollected and/or identified. The additional transaction-related and/orVAS information may then be utilized to facilitate completion of a widevariety of suitable VAS associated with the payment transactionincluding, but not limited to, the application of coupons, the awardand/or redemption of loyalty rewards, the delivery of receipts, productregistration services, warranty services, and/or shipping services.

The method 400 may end following block 445.

The method 400 of FIG. 4 describes the processing of a purchase paymenttransaction; however, various operations of the method 400 may beapplicable to other types of transactions. For example, notificationsassociated with bills and/or bill presentment information may be pushedto a mobile device 125 by a biller or a service provider system. Aconsumer may then review the billing notice and complete a paymenttransaction associated with a bill.

FIG. 5 illustrates a flow diagram of an example method 500 forcollecting authentication data associated with a card presenttransaction, according to example embodiments of the disclosure. Becausemany card present transactions are PIN or signature-based, the method500 may facilitate the collection of authentication data from a mobiledevice 125. Various operations of the method 500 may be performed bycomponents of the system 100 illustrated in FIG. 1. In one embodiment,the operations of the method 500 may be performed by a suitable serviceprovider system 130, for example, based upon a payment transactionrequest received from a merchant computer 105. In other embodiments,certain operations may be performed by a merchant computer 105 and/or bya combination of a merchant computer 105 and a service provider system130. The method 500 may begin at block 505.

At block 505, a payment account to be utilized in a payment transactionmay be identified. For example, payment account identificationinformation (e.g., an account number, an identifier that isrepresentative of the account, etc.) may be received from a merchantcomputer 105 and/or a mobile device 125, and the payment accountidentification information may be utilized to identify the paymentaccount. A wide variety of different types of payment accounts may beidentified as desired including, but not limited to, credit accounts,debit accounts, and/or stored value accounts. At block 510, one or moreavailable authentication techniques may be identified based at least inpart upon the identified payment account and/or an associated accounttype. For example, if the identified payment account is a creditaccount, then signature authentication may be identified as an availableauthentication technique; if the identified payment account is a debitaccount, then PIN (or mPIN) authentication may be identified as anavailable authentication technique; and if the payment account is adual-branded account, then both signature and PIN authentication may beidentified as available authentication techniques. Indeed, a widevariety of different types of available authentication techniques may beidentified as desired.

At block 515, in certain embodiments, one or more authenticationpreferences associated with selecting an available authenticationtechnique may be identified and evaluated. A wide variety of suitablepreferences may be identified, such as consumer preferences (e.g.,preferences stored at the service provider, preferences stored on amobile device 125, preferences received from a mobile device 125, etc.)and/or merchant preferences. At block 520, a type of authentication orvalidation to utilize for the payment transaction may be determined. Forexample, a type of authentication may be determined based upon anevaluation of available authentication techniques and/or an evaluationof authentication preferences.

In certain embodiments, a service provider system 130 (or merchantcomputer 105) may determine a type of authentication and/or validationto utilize in association with a payment transaction. For example, theservice provider system 130 may evaluate an account and/or account type,and the service provider system 130 may determine a type ofauthentication. In other embodiments, a mobile device 125 may make thedetermination. For example, a mobile wallet application may determine atype of authentication based upon a selection of a payment accountand/or activation of a payment application associated with a paymentaccount. In yet other embodiments, a consumer may be prompted to selectfrom available authentication types. For example, with a dual-brandedaccount, a consumer may be prompted to select a type of authentication.Alternatively, stored preferences may select the type of authentication.In certain embodiments, selection of an authentication type may select atype of transaction network (e.g., a debit network, a credit network,etc.) utilized in association with the dual-branded account.

At block 525, a request for authentication and/or validation informationmay be communicated to the mobile device 125 (or output if the mobiledevice 125 determines the type of desired authentication information).For example, a consumer may be prompted to provide a signature or toenter a PIN value. Once entered by the consumer, the authenticationinformation may be communicated to the service provider system 130 (ormerchant computer 105) and received at block 530. The authenticationinformation may then be utilized at block 535 during the processing andcompletion of the payment transaction.

The method 500 may end following block 535.

FIG. 6 illustrates a flow diagram of an example method 600 forcompleting a multi-user payment transaction, according to exampleembodiments of the disclosure. In this regard, a payment transactioninitiated by a first user may be reviewed and/or approved by a seconduser. For example, a parent may review and approve transactionsinitiated by one or more children. Various operations of the method 600may be performed by components of the system 100 illustrated in FIG. 1.In one embodiment, the operations of the method 600 may be performed bya suitable service provider system 130. In other embodiments, certainoperations may be performed by a merchant computer 105 and/or by acombination of a merchant computer 105 and a service provider system130. The method 600 may begin at block 605.

At block 605, a payment transaction request may be received from a firstdevice associated with a first user. For example, the first user mayutilize a personal computer or a mobile device to initiate or request apurchase transaction at a POS or as an eCommerce transaction. At block610, information associated with the payment transaction request may beevaluated in order to determine that review and/or approval from asecond user should be solicited. At block 615, a proposed payment noticemay be output for communication to a second device associated with thesecond user. In this regard, the second user may be permitted to reviewinformation associated with the payment transaction (e.g., a transactionamount, purchased items and/or services, merchant identificationinformation, etc.) and, as desired, the second user may approve or denythe payment transaction.

A wide variety of suitable methods and/or techniques may be utilized todetermine that transaction approval is required from a second user andto output a proposed payment notice to the second device. As oneexample, identification information associated with the first user(e.g., a user name, etc.), a first device (e.g., a telephone number,etc.), and/or a payment account (e.g., an account number, an accountnumber assigned to the first user, etc.) may be identified by a serviceprovider system 130 (or a merchant computer 105), and a determinationmay be made to communicate a message to the second device based at leastin part upon an evaluation of the identification information. In certainembodiments, at least a portion of the received identification may beutilized to obtain and/or access information associated with the seconduser and/or the second device (e.g., a telephone number, an emailaddress, etc.). As another example, when requesting a transaction, thefirst user may enter identification information associated with thesecond user and/or the second device (e.g., a name of the second user, atelephone number, etc.), and the entered information may be utilized tocommunicate a notice to the second device. As yet another example, awallet application associated with the first user may evaluate aproposed transaction, and the wallet application may communicate ordirect communication of a notice to a second user and/or second device.A notice communicated by the wallet application may be a noticegenerated by the wallet application or a received notice that isforwarded by the wallet application to the second user or second device.A wide variety of other techniques may be utilized to facilitate thecommunication of a notice to the second user, and the techniquesdescribed above are provided by way of example only.

A notice may include a wide variety of suitable information as desiredin various embodiments including, but not limited to, identificationinformation associated with the first user, information associated withthe first device, merchant identification information, informationassociated with the payment account, a proposed transaction amount,information associated with purchased items and/or services, and/orinformation associated with any number of VAS. Once received by a seconddevice, a notice may be presented to the second user in order tofacilitate review and/or approval of the payment transaction. In certainembodiments, a wallet application (or other application) associated withthe second device may evaluate information included in the notice (e.g.,identification information for the first user and/or first device,identification information associated with a service provider system,etc.), and the evaluated information may be compared to a white list ofapproved senders. In the event that the sender is included in the whitelist, the notice may be presented to the second user. In otherembodiments, a notice may be sent as an SMS or email message, and thenotice may include one or more links that initiate a wallet applicationand/or establish communication with a Web server that facilitates reviewand/or approval of the payment transaction.

The second user may review the proposed transaction and directcommunication of one or more responses to the notice. For example, thesecond device may be utilized to communicate one or more responses to aservice provider system 130 or a merchant computer 105. As anotherexample, one or more responses may be communicated to the first device.A response may include approval or denial information associated with aproposed payment transaction and, as desired, information associatedwith any number of value added services (e.g., shipping addressinformation, receipt delivery information, warranty information, loyaltyrewards information, etc.).

A response from the second device may be received at block 620. At block625, the received response may be evaluated in order to determinewhether the proposed transaction has been approved or denied. If it isdetermined at block 625 that the transaction has been denied, thenoperations may continue at block 630, and one or more denial messagesmay be output for communication to one or more recipients, such as amerchant computer 105 and/or the first device. If, however, it isdetermined at block 625 that the transaction has been approved, thenoperations may continue at block 635. At block 635, completion of thetransaction may be facilitated and, as desired, a wide variety ofsuitable VAS may be provided.

Operations of the method 600 may end following either block 630 or block635.

The operations described and shown in the methods 200, 300, 400, 500,600 of FIGS. 2-6 may be carried out or performed in any suitable orderas desired in various embodiments of the disclosure. Additionally, incertain embodiments, at least a portion of the operations may be carriedout in parallel. Furthermore, in certain embodiments, less than or morethan the operations described in FIGS. 2-6 may be performed.

Embodiments of the disclosure are described above with reference toblock and flow diagrams of systems, methods, apparatus, and/or computerprogram products according to example embodiments of the disclosure. Itwill be understood that one or more blocks of the block diagrams andflow diagrams, and combinations of blocks in the block diagrams and theflow diagrams, respectively, can be implemented by computer-executableprogram instructions. Likewise, some blocks of the block diagrams andflow diagrams may not necessarily need to be performed in the orderpresented, or may not necessarily need to be performed at all, accordingto some embodiments of the disclosure.

Various block and/or flow diagrams of systems, methods, apparatus,and/or computer program products according to example embodiments of thedisclosure are described above. It will be understood that one or moreblocks of the block diagrams and flow diagrams, and combinations ofblocks in the block diagrams and flow diagrams, respectively, can beimplemented by computer-executable program instructions. Likewise, someblocks of the block diagrams and flow diagrams may not necessarily needto be performed in the order presented, or may not necessarily need tobe performed at all, according to some embodiments of the disclosure.

These computer-executable program instructions may be loaded onto aspecial purpose computer or other particular machine, a processor, orother programmable data processing apparatus to produce a particularmachine, such that the instructions that execute on the computer,processor, or other programmable data processing apparatus create meansfor implementing one or more functions specified in the flow diagramblock or blocks. These computer program instructions may also be storedin a computer-readable memory that can direct a computer or otherprogrammable data processing apparatus to function in a particularmanner, such that the instructions stored in the computer-readablememory produce an article of manufacture including instruction meansthat implement one or more functions specified in the flow diagram blockor blocks. As an example, embodiments of the disclosure may provide fora computer program product, comprising a computer-usable medium having acomputer-readable program code or program instructions embodied therein,said computer-readable program code adapted to be executed to implementone or more functions specified in the flow diagram block or blocks. Thecomputer program instructions may also be loaded onto a computer orother programmable data processing apparatus to cause a series ofoperational elements or steps to be performed on the computer or otherprogrammable apparatus to produce a computer-implemented process suchthat the instructions that execute on the computer or other programmableapparatus provide elements or steps for implementing the functionsspecified in the flow diagram block or blocks.

Accordingly, blocks of the block diagrams and flow diagrams supportcombinations of means for performing the specified functions,combinations of elements or steps for performing the specified functionsand program instruction means for performing the specified functions. Itwill also be understood that each block of the block diagrams and flowdiagrams, and combinations of blocks in the block diagrams and flowdiagrams, can be implemented by special purpose, hardware-based computersystems that perform the specified functions, elements or steps, orcombinations of special purpose hardware and computer instructions.

Many modifications and other embodiments of the disclosure set forthherein will be apparent having the benefit of the teachings presented inthe foregoing descriptions and the associated drawings. Therefore, it isto be understood that the invention is not to be limited to the specificembodiments disclosed and that modifications and other embodiments areintended to be included within the scope of the appended claims.Although specific terms are employed herein, they are used in a genericand descriptive sense only and not for purposes of limitation.

What is claimed is:
 1. A computer-implemented method comprising:receiving, by a service provider system comprising one or more computersin network communication with one or more merchant computers configuredto host a webpage comprising inventory information indicative of adesired product or service, a request from the one or more merchantcomputers to initiate a card present transaction associated with aconsumer and the desired product or service; collecting, by the serviceprovider system, information associated with the card presenttransaction, the information comprising one or more identifiersassociated with the desired product or service, a desired paymentaccount, and consumer identification information; accessing, by theservice provider system, based at least in part on collectinginformation, one or more secure elements of a mobile device associatedwith the consumer to obtain an identifier associated with the mobiledevice; communicating, by the service provider system to the mobiledevice based at least in part on the identifier, transaction data and amessage that facilitates invocation of a transaction module associatedwith the mobile device, wherein the invocation automatically launchesthe transaction module; receiving, by the service provider system fromthe transaction module, validation information and payment account datafrom the mobile device, wherein the validation information is based atleast in part on the identifier accessed in the one or more secureelements of the mobile device and further based on a comparison, by themobile device, of at least a portion of the consumer identificationinformation with the identifier accessed in the one or more secureelements of the mobile device; requesting, by the service providersystem from an issuer system, approval of the card present transactionbased at least in part on the validation information and payment accountdata; and facilitating, by the service provider system, the card presenttransaction based at least in part on an interaction with thetransaction module.
 2. The computer-implemented method of claim 1,wherein the identifier associated with the mobile device is a mobiletelephone number.
 3. The computer-implemented method of claim 1, furthercomprising: receiving, by the service provider system from the mobiledevice, an indication of user approval of the card present transaction.4. The computer-implemented method of claim 1, further comprising:receiving, by the service provider system from the mobile device,authentication information associated with a payment account.
 5. Thecomputer-implemented method of claim 4, wherein receiving theauthentication information further comprises receiving one of: (i) asignature entered into the mobile device by a user operating the mobiledevice, (ii) a mobile personal identification number entered into themobile device by the user, or (iii) information derived from the mobilepersonal identification number.
 6. The computer-implemented method ofclaim 5, further comprising: identifying, by the service providersystem, the payment account; determining, by the service provider systembased at least in part on the identity of the payment account, a type ofdesired authentication information; and communicating, by the serviceprovider system to the mobile device, a request for the authenticationinformation.
 7. A non-transitory computer-readable medium storingcomputer-executable instructions which, when executed by a processor,cause the processor to perform operations comprising: receiving, fromone or more merchant computers configured to host a webpage comprisinginventory information indicative of a desired product or service, arequest to initiate a card present transaction associated with aconsumer and the desired product or service, wherein the merchantcomputer is in network communication with a service provider system;collecting information associated with the card present transaction, theinformation comprising one or more identifiers associated with thedesired product or service, a desired payment account, and consumeridentification information; accessing based at least in part oncollecting information, one or more secure elements of a mobile deviceassociated with the consumer to obtain an identifier associated with themobile device; communicating, to the mobile device, transaction data anda message that facilitates invocation of a transaction module associatedwith the mobile device based at least in part on the identifier, whereinthe invocation automatically launches the transaction module; receiving,from the transaction module, validation information and payment accountdata from the mobile device, wherein the validation information is basedat least in part on the identifier accessed in the one or more secureelements of the mobile device and further based on a comparison, by themobile device, of at least a portion of the consumer identificationinformation with the identifier accessed in the one or more secureelements of the mobile device; requesting from an issuer system,approval of the card present transaction based at least in part on thevalidation information and payment account data; and facilitating thecard present transaction based at least in part on an interaction withthe transaction module.
 8. The non-transitory computer-readable mediumof claim 7, wherein the identifier associated with the mobile device isa mobile telephone number.
 9. The non-transitory computer-readablemedium of claim 7, further comprising: receiving from the mobile devicean indication of user approval of the card present transaction.
 10. Thenon-transitory computer-readable medium of claim 7, further comprising:receiving from the mobile device authentication information associatedwith a payment account.
 11. The non-transitory computer-readable mediumof claim 10, wherein receiving the authentication information furthercomprises receiving one of: (i) a signature entered into the mobiledevice by a user operating the mobile device, (ii) a mobile personalidentification number entered into the mobile device by the user, or(iii) information derived from the mobile personal identificationnumber.
 12. The non-transitory computer-readable medium of claim 11,further comprising: identifying the payment account; determining a typeof desired authentication information based at least in part on theidentity of the payment account; and communicating to the mobile devicea request for the authentication information.
 13. A system comprising:one or more computers comprising: at least one processor; and at leastone memory storing computer-executable instructions, wherein the atleast one processor is operable to access the at least one memory andexecute the computer-executable instructions to: receive, from one ormore merchant computers configured to host a webpage comprisinginventory information indicative of a desired product or service, arequest to initiate a card present transaction associated with aconsumer and the desired product or service, wherein the merchantcomputer is in network communication with a service provider system;collect information associated with the card present transaction, theinformation comprising one or more identifiers associated with thedesired product or service, a desired payment account, and consumeridentification information; access based at least in part on thecollected information, one or more secure elements of a mobile deviceassociated with the consumer to obtain an identifier associated with themobile device and stored in one or more secure elements of the mobiledevice; communicate to the mobile device based at least in part on theidentifier, transaction data and a message that facilitates invocationof a transaction module associated with the mobile device, wherein theinvocation automatically launches the transaction module; receive fromthe transaction module, validation information and payment account datafrom the mobile device, wherein the validation information is based atleast in part on the identifier accessed in the one or more secureelements of the mobile device and further based on a comparison, by themobile device, of at least a portion of the consumer identificationinformation with the identifier accessed in the one or more secureelements of the mobile device; request from an issuer system, approvalof the card present transaction based at least in part on the validationinformation and payment account data; and facilitate the card presenttransaction based at least in part on an interaction with thetransaction module.
 14. The system of claim 13, wherein the identifierassociated with the mobile device is a mobile telephone number.
 15. Thesystem of claim 13, wherein the at least one processor is furtherconfigured to execute the computer-executable instructions to: receivefrom the mobile device an indication of user approval of the cardpresent transaction.
 16. The system of claim 13, wherein the at leastone processor is further configured to execute the computer-executableinstructions to: receive from the mobile device authenticationinformation associated with a payment account.
 17. The system of claim16, wherein the authentication information received from the mobiledevice further comprises one of: (i) a signature entered into the mobiledevice by the user, (ii) a mobile personal identification number enteredinto the mobile device by the user, or (iii) information derived fromthe mobile personal identification number.
 18. The system of claim 17,wherein the at least one processor is further configured to execute thecomputer-executable instructions to: identify the payment account;determine a type of desired authentication information based at least inpart upon the identity of the payment account; and communicate to themobile device a request for the authentication information.